- Overview
- CCO Azure Governance Dashboard Governance Version 2.6 NEW
- CCO Azure Infrastructure Dashboard Version 9.1 NEW
- List of resources
- CCO Azure Infrastructure Dashboard report pages
- CCO Azure Infrastructure Dashboard with AKS add-on report pages
- CCO GitHub Contributions Dashboard
- Call for Contribution
The Continuous Cloud Optimization Power BI Dashboards project is a set of Power BI Desktop Reports developed using Power Query M language and DAX, that pulls information directly from different Azure REST APIs and enables monitoring, operation and infrastructure teams to quickly gain insights about their existing Azure Platform footprint and resources.
The current set of CCO Dashboards includes 3 different Dashboards to discover information about different Azure critical design areas:
- CCO Azure Infrastructure Dashboard: Get insights about Azure advisor optimizations, Azure Security Center Alerts, Networking, Compute, RBAC, Idle resources and Subscriptions Quotas and Limits
- CCO Azure Governance Dashboard: Get insights about Azure Governance aspects like Management Groups and Subscriptions hierarchy, resource tagging and naming standards, security controls, policies compliance, Regulatory Standards and Azure Blueprints
- CCO Azure Infrastructure Dashboard with AKS: Get insights about AKS information
NOTE: If your're experiencing problems during the deployment of the dashboards, please check the Troubleshooting guide and the Github issues before creating a new one.
- New report page available for Azure Web Applications.
- Management Group filtering
- IMPORTANT: Now it requires the Custom connector (mandatory to retrieve the MGs)
- Governance dashboard policies visuals fix
This project includes the following resources:
- install folder: Includes all the files required to successfully deploy the Dashboard in your environment. The Deployment Guide file contains a detailed guidance to install and setup your dashboard including the requirements, what REST APIs are in use, the resource providers that needs to be enabled or what tabs are included as part of the default Dashboard. The Troubleshooting Guide file contains guidance to solve potential issues that you might encounter during the Dashboard deployment. Errors like Power BI regional settings, or Privacy levels will be documented on this document.
- queries folder: Includes the M queries used in the Dashboard to pull data from Azure and Graph REST APIs. This content is for reference purposes to facilitate the Data Model comprehension and to enable contributors to expand the Dashboard capabilities.
- docs/assets/pictures folder: Contains all the images that the Dashboard will use when loading data from Azure. The content of this folder will be dynamic and we will update the repository regularly. Make sure the computer running the Dashboard that has internet access also have access to this URL https://azure.github.io/ccodashboard/assets/pictures
- dashboards folder: This parent folder contains sub folders with different versions of the CCO Dashboard depending on the workloads you want to get report from. We expect to see more versions in the future from community contributions.
- CCODashboard-Infra folder has a more generic version of the Dashboard that includes information from Azure Advisor, Azure Security Center, Azure Networking REST APIs, Azure Compute REST APIs and Graph
- CCODashboard-Governance folder has a dashboard aligned with the Microsoft Cloud Adoption Framework governance principles and will allow to get quick insights around Management Groups, Subscriptions, Blueprints, Polices, Naming Standards, Tagging and Regulatory Standards compliance. For this dashboard is needed the installation of a custom connector.
- CCODashboard-AKS folder has the add-on report to monitor Azure Kubernetes Services.
The version 2.6 of the CCO Power BI Dashboard Governance includes the following information:
- Azure Management Groups and Subscriptions hierarchy
- Resource Groups and Resources Tagging information
- Regulatory Standards Compliance Overview NEW
- Azure Security and Compliance NEW
- Azure Policies
- Azure Subscriptions Blueprints NEW
You can find more details about each page on the Deployment Guide file.
The version 9.1 of the CCO Power BI Dashboard includes 10 report pages. You will be able to navigate, filter and report the following information:
- Page 1: Overview
- Page 2: Azure Advisor Recommendations
- Page 3: Azure Security Center Alerts
- Page 4: Azure Compute information
- Page 5: Web Applications (Including function Apps)
- Page 6 Azure Networking information
- Page 7: Network Security Groups
- Page 8: Azure RBAC permissions
- Page 9: Azure Service Principals RBAC permissions
- Page 10: IaaS Usage and Limits
- Page 11: IaaS Idle Resources
You can find more details about each page on the Deployment Guide file.
IMPORTANT: You must follow this procedure to implement Azure delegated resource management to get data from subscriptions in other tenants.
The version 1.0 of the CCO GitHub Contributions Dashboard includes 1 report page. You will be able to navigate, filter and report the following information:
- Number of contributors
- Total number of pull requests
- Number of watchers
- Number of stars
- Number of forks
- Number of clones
- Number of open pull requests
- Average pull requests per day
- Pull requests' lifecycle (in days)
- Comparison between number of open vs closed pull requests over the last months.
- Comparison between number of additions vs deletions per month
- Top contributors measured by changes in their pull requests.
The version 1.0 of the CCO ADO Contributions Dashboard includes 1 report page. You will be able to navigate, filter and report the following information:
- Number of Projects
- Number of open/closed pull requests
- Average pull requests per day
- Comparison between number of open vs closed pull requests over the last months
- Branches created over the last months
- ...
The version 5.0 of the CCO Power BI Dashboard AKS add-on includes the following information:
- Azure Kubernetes Clusters information
- Nodes, Pods, Containers status from Azure Log Analytics
- Azure Container Images (and source repositories) running on AKS Clusters NEW
- Security recommendations to apply from Azure Security Center NEW
- Service principals (showing assigned RBAC Roles) with cluster permissions NEW
- Azure Container Instances information NEW
- Improved API Rest calls NEW
- Custom connector and Assessments metadata API Bug fixing
- Azure Policy and Azure Blueprints names changed.
- US Government region support NEW
- Alignment with Azure Security Benchmarks and Azure Security Center Secure Scores
- New Security & Compliance page NEW
- New Regulatory Standards Forecast page NEW
- Redesigned Azure Blueprints page
- New UX design with latest Azure Portal Icons NEW
- General Bug Fixes and code improvements
- Bug fix: Maps location problems in Overview, Compute and Usage&Limits resources pages fixed.
- New features:
- Expiration date added to the SPNs. NEW
- Reset filters button added. NEW
- Bug fixing 1:1 relationship between Tenants and Subscriptions to M:N relationship.
- Bug fixing 1:1 relationship between Tenants and Subscriptions to M:N relationship.
- Bug fix Issue #72:
- Subscription IDs in All Subscriptions table must be uniques.
- One tenant can be managed by one or more tenants (this data now is hidden but it will be used in future releases).
- Multi tenant feature NEW (requires Azure delegated resource management).
- Tenant filtering in all pages.
- Added subscription filtering in IaaS Usage and Limits and IaaS Idle Resources pages.
IMPORTANT: You must follow this procedure to implement Azure delegated resource management.
- Bug fixing ASC recommendation: Now all the Security Center Recommendations are defined in this file. This file contains all the recommendations from docs.microsoft.com but will be updated by us for consolidating the model and avoid the issues when the official URL is updated.
- Bug fixing ASC recommendation URLs updated.
- Bug fixing ASC recommendation URLs updated.
- Bug fixing IaaS Idle Resources data number color changed from black to white.
Azure Resources Usage and Limits Page NEW
- List Compute, Networking and Storage Azure Resources Usage and limits per subscription and region
Azure Idle Resources identification Page NEW
- List Idle Public IPs, Network Interfaces and Disks per Subscription
- NSGs bug fixing when NSGs configuration are empty
- Bug fixing number of VNETs per subscription
- Bug Fixing duplicated VNET Peerings count
- Bug fixing issues with ASC Network Recommendations table load from docs.microsoft.com
- Incorporating icons new feature from PowerBI Desktop
Overview Page
- New Resource Groups tags counter
- New Subscriptions, RG and Tags Search option
Tags Overview NEW
- Filter Resource Groups and Resources with Tags
- Filter Resource Groups and Resources without Tags
- Number of tagged resources by resource type
- Number of untagged resources by resource type
- Search option for Resource Group and Resources tags
Azure Advisor
- Performance improvements and bugs fixes
- Simplified recommendations images
- Security recommendations
Azure Security Center
- Performance improvements and bugs fixes
- Simplified recommendations images
- Enhanced recommendation types filtering
Security Alerts
- Performance improvements and bugs fixes
- Simplified recommendations images
Compute
- Performance improvements and bugs fixes
Networking
- Performance improvements and bugs fixes
NSGs NEW
- NSG rules overview across subscriptions (VMs and Subnets)
- Filter NSGs by subscription, Resource Group, NSG name, Tags, Direction and Ports
RBAC
- Performance improvements and bugs fixes
- Filtering RBAC permissions by object type (Users or Groups)
- Search option for Resource Group and users
RBAC Service Principals NEW
- Filtering RBAC permissions by Service Principal Type
- Search option for Users and Resource Groups
This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do grant us the rights to use your contribution. For details, visit https://cla.microsoft.com.
When you submit a pull request, a CLA-bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., label, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.
This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.